Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
File: idvHFWpO58Z9nmhHZ6L0uvijW6s.mft (raw, json)
Hash identifier: eKz01NYiAcu44xGtdmNyLKDBOL/Rcnesx0x/li+wESE=
Subject key identifier: AA:87:03:5B:E3:FE:A1:B2:E2:A6:45:74:0B:3E:C8:C4:C4:23:B4:C1
Authority key identifier: 89:DB:C7:15:6A:4E:E7:C6:7D:9E:68:47:67:A2:F4:BA:F8:A3:5B:AB
Certificate issuer: /CN=89dbc7156a4ee7c67d9e684767a2f4baf8a35bab
Certificate serial: 019897135F15AEA6F7745D1325C69D7C73D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
Manifest number: 162B
Signing time: Mon 11 Aug 2025 03:01:25 +0000
Manifest this update: Mon 11 Aug 2025 03:01:25 +0000
Manifest next update: Tue 12 Aug 2025 03:01:25 +0000
Files and hashes: 1: J-tps2ELkCfcCcLwGdsaO09dBP4.roa (hash: 6YmY5CCnPEhTUSkoYzLXDEbRDQk4iktCzj/XnKUd+Ik=)
2: idvHFWpO58Z9nmhHZ6L0uvijW6s.crl (hash: Sb8weiWTWxp3XIlDkwVZosugUji9AeKUieHppkLWCBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:13:5f:15:ae:a6:f7:74:5d:13:25:c6:9d:7c:73:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89dbc7156a4ee7c67d9e684767a2f4baf8a35bab
Validity
Not Before: Aug 11 03:01:25 2025 GMT
Not After : Aug 12 03:01:25 2025 GMT
Subject: CN=aa87035be3fea1b2e2a645740b3ec8c4c423b4c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b5:b1:86:9f:fc:ad:3b:8f:68:2a:ac:ac:5c:
b0:a8:77:c1:db:1f:1f:cf:ab:07:0a:a5:40:a0:fd:
fd:9a:4f:a7:88:5b:9e:c9:b0:e2:1e:c3:b3:28:ea:
b4:6d:97:ff:f2:f8:93:8f:63:74:fa:d8:3b:6b:ed:
bb:32:7e:d0:1f:dd:cf:bf:fd:06:4f:a5:ca:1d:d6:
9f:48:c0:b2:26:10:b4:f1:79:7f:a5:d7:fe:f4:f5:
ac:09:1e:60:b6:4f:cd:97:76:57:b0:53:90:20:75:
2d:b6:24:43:cb:ba:5a:a3:64:17:80:9d:3b:bf:52:
c5:e8:4e:11:9c:12:41:48:82:17:61:43:15:d3:02:
d6:0b:2b:8c:5a:7d:d5:a2:cb:37:c0:68:da:d9:46:
fd:70:98:fa:32:2d:e5:21:c8:77:9b:05:21:4d:7f:
d1:96:7d:bf:26:77:5a:7a:2a:75:da:ee:01:6c:11:
81:fe:ac:73:ef:f3:e7:03:d7:04:db:12:c3:2c:ca:
24:df:9b:55:fc:1a:f1:33:55:37:25:44:c2:dd:83:
24:7c:36:15:3b:55:6d:1c:ae:a4:87:8d:c4:37:dd:
78:23:0c:ae:44:50:61:89:d3:23:0a:4c:a8:08:4f:
9c:7e:e6:d8:4b:95:fc:ca:2f:8f:32:48:95:be:11:
0e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:87:03:5B:E3:FE:A1:B2:E2:A6:45:74:0B:3E:C8:C4:C4:23:B4:C1
X509v3 Authority Key Identifier:
keyid:89:DB:C7:15:6A:4E:E7:C6:7D:9E:68:47:67:A2:F4:BA:F8:A3:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:7d:cb:48:52:f1:5d:77:94:f7:c7:9b:00:57:f2:2f:b0:6e:
5d:35:33:5c:26:79:e0:02:c4:ea:3a:07:d4:6b:60:28:a4:a7:
a4:d6:47:a5:d3:53:ff:0d:60:98:03:4f:6e:5c:53:c0:97:c1:
3b:36:dc:4c:25:54:d1:32:c0:91:4e:48:ea:54:ff:50:2f:8b:
61:d1:7b:bb:b1:db:51:3f:66:e9:b5:d5:76:bb:66:15:5b:06:
4c:7e:41:7e:01:81:85:34:6c:ce:2e:1a:79:68:41:9b:ab:98:
8a:d2:4a:43:cc:c4:ab:9d:26:04:a4:53:f4:70:a4:43:2b:73:
8a:d0:34:3b:db:a8:85:e1:6f:6e:3c:e7:bc:69:d5:62:20:2d:
d3:c8:93:80:67:81:57:45:ff:e2:04:08:c2:97:02:48:10:1c:
a4:dc:81:f7:fc:4c:40:db:6c:91:59:08:e0:f4:a1:36:18:d3:
78:ef:90:21:c9:b3:4b:fe:2d:9a:ae:68:9a:c1:c2:f3:69:be:
8a:b1:72:59:e5:f1:16:ca:d8:89:bf:3c:e7:16:9f:53:74:35:
12:1d:59:19:04:b8:58:4b:0d:60:df:87:9f:d5:6f:e7:4e:d6:
3b:70:2d:92:50:d3:1e:ed:c1:c2:e8:5c:67:45:01:2a:59:8a:
72:a1:e6:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:24:17 2025 by rpki-client